Bump zope-interface from 4.7.2 to 5.0.1

[dependabot-preview]

Bumps zope-interface from 4.7.2 to 5.0.1.

Changelog

Sourced from zope-interface's changelog.

5.0.1 (2020-03-21)

• Ensure the resolution order for InterfaceClass is consistent. See issue 192.
• Ensure the resolution order for collections.OrderedDict is consistent on CPython 2. (It was already consistent on Python 3 and PyPy).
• Fix the handling of the ZOPE_INTERFACE_STRICT_IRO environment variable. Previously, ZOPE_INTERFACE_STRICT_RO was read, in contrast with the documentation. See issue 194.

5.0.0 (2020-03-19)

• Make an internal singleton object returned by APIs like implementedBy and directlyProvidedBy immutable. Previously, it was fully mutable and allowed changing its __bases___. That could potentially lead to wrong results in pathological corner cases. See issue 158.

• Support the PURE_PYTHON environment variable at runtime instead of just at wheel build time. A value of 0 forces the C extensions to be used (even on PyPy) failing if they aren't present. Any other value forces the Python implementation to be used, ignoring the C extensions. See PR 151.

• Cache the result of __hash__ method in InterfaceClass as a speed optimization. The method is called very often (i.e several hundred thousand times during Plone 5.2 startup). Because the hash value never changes it can be cached. This improves test performance from 0.614s down to 0.575s (1.07x faster). In a real world Plone case a reindex index came down from 402s to 320s (1.26x faster). See PR 156.

• Change the C classes SpecificationBase and its subclass ClassProvidesBase to store implementation attributes in their structures instead of their instance dictionaries. This eliminates the use of an undocumented private C API function, and helps make some instances require less memory. See PR 154.

• Reduce memory usage in other ways based on observations of usage patterns in Zope (3) and Plone code bases.

  • Specifications with no dependents are common (more than 50%) so avoid allocating a WeakKeyDictionary unless we need it.
  • Likewise, tagged values are relatively rare, so don't allocate a dictionary to hold them until they are used.
  • Use __slots___ or the C equivalent tp_members in more common places. Note that this removes the ability to set arbitrary instance variables on certain objects. See PR 155.

  The changes in this release resulted in a 7% memory reduction after loading about 6,000 modules that define about 2,200 interfaces.

  Details of many private attributes have changed, and external use of those private attributes may break. In particular, the lifetime and default value of _v_attrs has changed.

• Remove support for hashing uninitialized interfaces. This could only be done by subclassing InterfaceClass. This has generated a warning since it was first added in 2011 (3.6.5). Please call the InterfaceClass constructor or otherwise set the appropriate fields in your subclass before attempting to hash or sort it. See issue 157.

• Remove unneeded override of the __hash__ method from zope.interface.declarations.Implements. Watching a reindex index process in ZCatalog with on a Py-Spy after 10k samples the time for .adapter._lookup was reduced from 27.5s to 18.8s (~1.5x faster). Overall reindex index time shrunk from 369s to 293s (1.26x faster). See PR 161.

• Make the Python implementation closer to the C implementation by ignoring all exceptions, not just AttributeError, during (parts of) interface adaptation. See issue 163.

• Micro-optimization in .adapter._lookup , .adapter._lookupAll and .adapter._subscriptions: By loading components.get into a local variable before entering the loop a bytcode "LOAD_FAST 0 (components)" in the loop can be eliminated. In Plone, while running all tests, average speedup of the "owntime" of _lookup is ~5x. See PR 167.

• Add __all__ declarations to all modules. This helps tools that do auto-completion and documentation and results in less cluttered results. Wildcard ("*") are not recommended and may be affected. See issue 153.

• Fix verifyClass and verifyObject for builtin types like dict that have methods taking an optional, unnamed argument with no default value like dict.pop. On PyPy3, the verification is strict, but on PyPy2 (as on all versions of CPython) those methods cannot be verified and are ignored. See issue 118.

• Update the common interfaces IEnumerableMapping, IExtendedReadMapping, IExtendedWriteMapping, IReadSequence and IUniqueMemberWriteSequence to no longer require methods that were removed from Python 3 on Python 3, such as __setslice___. Now, dict, list and tuple properly verify as IFullMapping, ISequence and IReadSequence, respectively on all versions of Python.

• Add human-readable __str___ and __repr___ to Attribute and Method. These contain the name of the defining interface and the attribute. For methods, it also includes the signature.

• Change the error strings raised by verifyObject and verifyClass. They now include more human-readable information and exclude extraneous lines and spaces. See issue 170.

  This will break consumers (such as doctests) that

  : depended on the exact error messages.

• Make verifyObject and verifyClass report all errors, if the candidate object has multiple detectable violations. Previously they reported only the first error. See issue.

  Like the above, this will break consumers depending on the exact output of error messages if more than one error is present.

... (truncated)

Commits

• 023f1d5 Preparing release 5.0.1
• b614a6c Merge pull request #195 from zopefoundation/issue192-issue194
• a11e1ea Make the RO for InterfaceClass consistent and fix handling of the STRICT_IRO ...
• 3a50f2e Back to development: 5.0.1
• 953ba42 Preparing release 5.0.0
• 6c98b33 Merge branch 'faster-eq-hash-comparison'
• 04152ae Another comment update, referencing #163
• 42c5ad2 Update comments and add a test for more coverage.
• dc719e2 Remove untested except in the metaclass new.
• 6be183e Add additional tests for assigning to Interface.module.
• Additional commits viewable in compare view

Dependabot will resolve any conflicts with this PR as long as you don't alter it yourself. You can also trigger a rebase manually by commenting @dependabot rebase.

If all status checks pass Dependabot will automatically merge this pull request.

---

Dependabot commands and options

You can trigger Dependabot actions by commenting on this PR:

• @dependabot rebase will rebase this PR
• @dependabot recreate will recreate this PR, overwriting any edits that have been made to it
• @dependabot merge will merge this PR after your CI passes on it
• @dependabot squash and merge will squash and merge this PR after your CI passes on it
• @dependabot cancel merge will cancel a previously requested merge and block automerging
• @dependabot reopen will reopen this PR if it is closed
• @dependabot close will close this PR and stop Dependabot recreating it. You can achieve the same result by closing it manually
• @dependabot ignore this major version will close this PR and stop Dependabot creating any more for this major version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this minor version will close this PR and stop Dependabot creating any more for this minor version (unless you reopen the PR or upgrade to it yourself)
• @dependabot ignore this dependency will close this PR and stop Dependabot creating any more for this dependency (unless you reopen the PR or upgrade to it yourself)
• @dependabot use these labels will set the current labels as the default for future PRs for this repo and language
• @dependabot use these reviewers will set the current reviewers as the default for future PRs for this repo and language
• @dependabot use these assignees will set the current assignees as the default for future PRs for this repo and language
• @dependabot use this milestone will set the current milestone as the default for future PRs for this repo and language
• @dependabot badge me will comment on this PR with code to add a "Dependabot enabled" badge to your readme

Additionally, you can set the following in your Dependabot dashboard:

• Update frequency (including time of day and day of week)
• Pull request limits (per update run and/or open at any time)
• Automerge options (never/patch/minor, and dev/runtime dependencies)
• Out-of-range updates (receive only lockfile updates, if desired)
• Security updates (receive only security updates, if desired)

[dependabot-preview]

One of your CI runs failed on this pull request, so Dependabot won't merge it.

• continuous-integration/travis-ci/push

Dependabot will still automatically merge this pull request if you amend it and your tests pass.

[dependabot-preview]

Superseded by #123.